Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/1b30bf-bcc7-4777-9146-7a30be5cecc0/1/sTSesOfbZTbKeYKWH_rJsykWXF8.mft
File:                     sTSesOfbZTbKeYKWH_rJsykWXF8.mft (raw, json)
Hash identifier:          k7VpqJmJ9wnAXgSlW/Alir8Po1yKuRztuUCssppicKg=
Subject key identifier:   36:11:30:73:4A:E0:0A:79:64:F1:10:4E:84:94:9C:E6:30:20:E7:2B
Authority key identifier: B1:34:9E:B0:E7:DB:65:36:CA:79:82:96:1F:FA:C9:B3:29:16:5C:5F
Certificate issuer:       /CN=b1349eb0e7db6536ca7982961ffac9b329165c5f
Certificate serial:       0199FB7CBAFD3D49DB44D76E81A11E080470
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sTSesOfbZTbKeYKWH_rJsykWXF8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/1b30bf-bcc7-4777-9146-7a30be5cecc0/1/sTSesOfbZTbKeYKWH_rJsykWXF8.mft
Manifest number:          0396
Signing time:             Sun 19 Oct 2025 08:01:19 +0000
Manifest this update:     Sun 19 Oct 2025 08:01:19 +0000
Manifest next update:     Mon 20 Oct 2025 08:01:19 +0000
Files and hashes:         1: sTSesOfbZTbKeYKWH_rJsykWXF8.crl (hash: IAHoKYjUh2B/bfFfQksRWji3gj1pkg2N1L+M/96mFuI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/1b30bf-bcc7-4777-9146-7a30be5cecc0/1/sTSesOfbZTbKeYKWH_rJsykWXF8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/1b30bf-bcc7-4777-9146-7a30be5cecc0/1/sTSesOfbZTbKeYKWH_rJsykWXF8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sTSesOfbZTbKeYKWH_rJsykWXF8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:7c:ba:fd:3d:49:db:44:d7:6e:81:a1:1e:08:04:70
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b1349eb0e7db6536ca7982961ffac9b329165c5f
        Validity
            Not Before: Oct 19 08:01:19 2025 GMT
            Not After : Oct 20 08:01:19 2025 GMT
        Subject: CN=361130734ae00a7964f1104e84949ce63020e72b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:a6:f9:03:f4:da:10:06:61:ae:2f:cb:28:b0:
                    a3:e2:46:23:66:c1:14:9c:fd:ef:ca:2c:9e:16:76:
                    3d:fe:68:12:58:c2:56:ae:e7:bc:c4:b3:e5:22:3d:
                    72:89:31:de:86:98:6b:10:be:ad:ab:38:b8:da:17:
                    72:75:15:43:2b:5a:3b:9a:fd:d7:dc:b5:f8:83:b0:
                    f2:fb:aa:f3:06:ea:e6:47:bb:38:00:5d:95:6c:d9:
                    8e:54:bb:15:d8:01:74:7d:50:0e:6b:b9:b6:3c:3f:
                    1d:f6:b7:48:2e:e5:3e:54:28:b6:31:30:d8:bf:65:
                    1d:fe:8f:0b:8e:92:d7:db:ca:2a:f7:39:2c:f7:c8:
                    dc:7c:cc:f7:e4:f9:9b:c0:13:37:b9:6a:bc:62:8c:
                    eb:d2:02:51:3b:4f:aa:c7:99:b8:57:69:43:0a:63:
                    ab:bb:10:bc:cb:59:2b:69:dc:12:40:89:75:5c:58:
                    02:75:46:6c:69:39:e1:4f:42:35:6b:d2:92:ff:66:
                    20:55:2c:35:ef:4b:15:3d:e4:3a:d7:7a:64:28:77:
                    b8:07:1c:38:43:8f:4d:20:8e:b6:ec:61:dc:b4:3a:
                    88:60:98:26:8a:20:81:86:72:50:57:10:6b:fe:84:
                    ee:d8:5f:27:9d:6f:95:f1:2a:82:31:f4:36:c0:2e:
                    f7:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:11:30:73:4A:E0:0A:79:64:F1:10:4E:84:94:9C:E6:30:20:E7:2B
            X509v3 Authority Key Identifier:
                keyid:B1:34:9E:B0:E7:DB:65:36:CA:79:82:96:1F:FA:C9:B3:29:16:5C:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTSesOfbZTbKeYKWH_rJsykWXF8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/1b30bf-bcc7-4777-9146-7a30be5cecc0/1/sTSesOfbZTbKeYKWH_rJsykWXF8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/1b30bf-bcc7-4777-9146-7a30be5cecc0/1/sTSesOfbZTbKeYKWH_rJsykWXF8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:a9:e9:0d:9a:ef:c3:f7:04:60:d9:08:36:95:78:f3:56:78:
         03:53:0b:1f:1f:1f:8f:db:ab:8b:ae:83:c1:4b:65:62:6a:3e:
         8a:f1:f5:19:39:f9:aa:27:ba:1b:cb:03:e8:0f:0b:f0:b1:bc:
         d9:78:e4:1e:a4:8e:80:e2:13:18:0e:cd:35:c5:2e:7b:2b:8a:
         6e:b1:73:c0:d9:dc:88:a6:e0:dd:17:d7:55:33:c6:20:da:fb:
         bc:42:88:98:16:4b:5f:d3:73:a4:22:81:62:5a:e4:fa:20:c0:
         1e:26:80:cb:75:04:9e:48:21:88:87:7d:74:db:51:e8:56:a5:
         8e:d0:49:87:63:7f:2b:2d:34:d4:89:a0:32:12:fb:a8:24:11:
         41:da:fd:c2:c0:5b:8f:2f:c2:1d:bf:7b:16:07:bf:29:d5:98:
         32:e3:17:af:06:75:fc:7b:22:9d:fa:43:45:ad:22:45:c7:d1:
         92:b2:7e:be:c6:65:b3:75:2b:04:7a:53:7c:5b:be:32:db:88:
         fe:f2:da:af:99:fd:b1:af:82:a1:1d:8a:82:3f:95:a5:46:13:
         f4:f3:d4:81:46:43:11:f0:ce:14:c4:53:e6:26:7a:1d:30:bf:
         83:22:81:e7:0a:2f:83:42:4c:47:70:21:c3:b7:93:77:1c:cd:
         b6:00:4b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----